10489772

Out-Of-Band Device Verification of Transactions

PublishedNovember 26, 2019
Assigneenot available in USPTO data we have
InventorsAndrea Forte
Technical Abstract

Patent Claims
20 claims

Legal claims defining the scope of protection, as filed with the USPTO.

1

1. A method comprising: receiving, at a first device comprising a processor, a request to verify a transaction between a second device and an application on a third device, wherein the request is received via a first communication channel between the first device and the third device, and wherein the request is received with transaction data that represents data received by the third device and from the second device during the transaction; identifying, by the first device, an out-of-band device that provides output to the second device during the transaction, wherein the out-of-band device comprises a further processor and a memory that stores the output; requesting, by the first device and via a second communication channel between the first device and the out-of-band device, verification data from the out-of-band device, wherein the verification data represents input entered at the out-of-band device and provided by the out-of-band device as the output to the second device during the transaction, and wherein the second communication channel is not used by the second device for the transaction; receiving, by the first device and via the second communication channel, the verification data from the out-of-band device; comparing, by the first device, the verification data to the transaction data to determine if the transaction is authorized; and sending, by the first device, a verification response to the third device based on the determining, wherein the verification response indicates the transaction is to be allowed if the transaction is authorized, and wherein the verification response indicates the transaction is not to be allowed if the transaction is unauthorized.

2

2. The method of claim 1 , wherein the transaction is determined to be authorized if the verification data matches the transaction data.

3

3. The method of claim 1 , wherein the transaction is determined to be unauthorized if the verification data does not match the transaction data.

4

4. The method of claim 3 , wherein the verification response further indicates that a notification is to be provided to the second device, wherein the notification indicates that that the transaction has been blocked.

5

5. The method of claim 1 , wherein the out-of-band device comprises an input device of the second device, and wherein the input device is used during the transaction.

6

6. The method of claim 1 , wherein requesting the verification data comprises: generating, by the processor, a verification data request that requests the verification data from the out-of-band device; and transmitting, by the processor, the verification data request to the out-of-band device via the second communication channel.

7

7. The method of claim 1 , wherein the third device comprises a web server that hosts the application, wherein the out-of-band device comprises a component of the second device, and wherein the component is used during the transaction.

8

8. The method of claim 1 , wherein the third device comprises a web server, wherein the application comprises a server application that is hosted by the web server, and wherein in response to determining that the transaction is not to be allowed, the first device instructs the server application to terminate the transaction.

9

9. The method of claim 1 , wherein the transaction data represents an amount associated with the transaction, wherein the verification data represents keystrokes received by an input device during the transaction, and wherein determining that the transaction is authorized comprises determining that the keystrokes correspond to the amount.

10

10. A system comprising: a first device comprising a processor; and a memory that stores computer-executable instructions that, when executed by the processor, cause the processor to perform operations comprising receiving a request to verify a transaction between a second device and an application on a third device, wherein the request is received via a first communication channel between the first device and the third device, and wherein the request is received with transaction data that represents data received by the third device and from the second device during the transaction, identifying an out-of-band device that provides output to the second device during the transaction, wherein the out-of-band device comprises a further processor and a further memory that stores the output, requesting, via a second communication channel between the first device and the out-of-band device, verification data from the out-of-band device, wherein the verification data represents input entered at the out-of-band device and provided by the out-of-band device as the output to the second device during the transaction, and wherein the second communication channel is not used by the second device for the transaction, receiving, via the second communication channel, the verification data from the out-of-band device, and comparing the verification data to the transaction data to determine if the transaction is authorized, and sending a verification response to the third device based on the determining, wherein the verification response indicates the transaction is to be allowed if the transaction is determined to be authorized, and wherein the verification response indicates the transaction is not to be allowed if the transaction is determined to be unauthorized.

11

11. The method of claim 1 , wherein the out-of-band device comprises a display connected to the second device, and wherein determining that the transaction is unauthorized comprises determining that the display is not in use during the transaction.

12

12. The system of claim 10 , wherein the transaction is determined to be authorized if the verification data matches the transaction data.

13

13. The system of claim 10 , wherein the transaction is determined to be unauthorized if the verification data does not match the transaction data.

14

14. The system of claim 13 , wherein the verification response further indicates that a notification is to be provided to the second device, wherein the notification indicates that that the transaction has been blocked.

15

15. The system of claim 10 , wherein requesting the verification data comprises: generating a verification data request that requests the verification data from the out-of-band device; and transmitting the verification data request to the out-of-band device via the second communication channel.

16

16. A computer storage medium having computer-executable instructions stored thereon that, when executed by a processor, cause the processor to perform operations comprising: receiving, at a first device, a request to verify a transaction between a second device and an application on a third device, wherein the request is received via a first communication channel between the first device and the third device, and wherein the request is received with transaction data that represents data received by the third device and from the second device during the transaction; identifying an out-of-band device that provides output to the second device during the transaction, wherein the out-of-band device comprises a further processor and a memory that stores the output; requesting, via a second communication channel between the first device and the out-of-band device, verification data from the out-of-band device, wherein the verification data represents input entered at the out-of-band device and provided by the out-of-band device as the output to the second device during the transaction, and wherein the second communication channel is not used by the second device for the transaction; receiving, via the second communication channel, the verification data from the out-of-band device; comparing the verification data to the transaction data to determine if the transaction is authorized; and sending a verification response to the third device based on the determining, wherein the verification response indicates the transaction is to be allowed if the transaction is determined to be authorized, and wherein the verification response indicates the transaction is not to be allowed if the transaction is determined to be unauthorized.

17

17. The computer storage medium of claim 16 , wherein the transaction is determined to be authorized if the verification data matches the transaction data.

18

18. The computer storage medium of claim 16 , wherein the transaction is determined to be unauthorized if the verification data does not match the transaction data.

19

19. The computer storage medium of claim 18 , wherein the verification response further indicates that a notification is to be provided to the second device, wherein the notification indicates that that the transaction has been blocked.

20

20. The computer storage medium of claim 16 , wherein the out-of-band device comprises an input device of the second device, and wherein the output is received by the second device from the input device and sent by the second device directed to the third device.

Patent Metadata

Filing Date

Unknown

Publication Date

November 26, 2019

Inventors

Andrea Forte

Want to explore more patents?

Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.

Citation & reuse

Analysis on this page is generated by Patentable — an AI-powered patent intelligence platform. AI-generated summaries, explanations, and analysis may be reused with attribution and a visible link back to the canonical URL below. Patent abstracts and claims are USPTO public domain.

Cite as: Patentable. “Out-Of-Band Device Verification of Transactions” (10489772). https://patentable.app/patents/10489772

© 2026 Patentable. All rights reserved.

Patentable is a research and drafting-assistant tool, not a law firm, and does not provide legal advice. Documents we generate are drafts for review by a licensed patent attorney.